Fides: Lightweight Authenticated Cipher with Side-Channel Resistance for Constrained Hardware

Begül Bilgin, Andrey Bogdanov, Miroslav Knezevic, Florian Mendel, Qingju Wang

    Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

    44 Citations (Scopus)

    Abstract

    In this paper, we present a novel lightweight authenticated cipher optimized for hardware implementations called Fides. It is an online nonce-based authenticated encryption scheme with authenticated data whose area requirements are as low as 793 GE and 1001 GE for 80-bit and 96-bit security, respectively. This is at least two times smaller than its closest competitors Hummingbird-2 and Grain-128a. While being extremely compact, Fides is both throughput and latency efficient, even in its most serial implementations. This is attained by our novel sponge-like design approach. Moreover, cryptographically optimal 5-bit and 6-bit S-boxes are used as basic nonlinear components while paying a special attention on the simplicity of providing first order side-channel resistance with threshold implementation.
    Original languageUndefined
    Title of host publicationCryptographic Hardware and Embedded Systems, CHES 2013
    EditorsG. Bertoni, J.S. Coron
    Place of PublicationHeidelberg, Germany
    PublisherSpringer
    Pages142-158
    Number of pages17
    ISBN (Print)978-3-642-40348-4
    DOIs
    Publication statusPublished - 2013

    Publication series

    NameLecture Notes in Computer Science
    PublisherSpringer Berlin Heidelberg
    Volume8086
    ISSN (Print)0302-9743
    ISSN (Electronic)1611-3349

    Keywords

    • EWI-24465
    • keyed sponge
    • glitch-free masking
    • authenticated encryption
    • IR-89342
    • Lightweight cryptography
    • almost bent permutation
    • METIS-302705
    • APN permutation

    Cite this

    Bilgin, B., Bogdanov, A., Knezevic, M., Mendel, F., & Wang, Q. (2013). Fides: Lightweight Authenticated Cipher with Side-Channel Resistance for Constrained Hardware. In G. Bertoni, & J. S. Coron (Eds.), Cryptographic Hardware and Embedded Systems, CHES 2013 (pp. 142-158). (Lecture Notes in Computer Science; Vol. 8086). Heidelberg, Germany: Springer. https://doi.org/10.1007/978-3-642-40349-1_9
    Bilgin, Begül ; Bogdanov, Andrey ; Knezevic, Miroslav ; Mendel, Florian ; Wang, Qingju. / Fides: Lightweight Authenticated Cipher with Side-Channel Resistance for Constrained Hardware. Cryptographic Hardware and Embedded Systems, CHES 2013. editor / G. Bertoni ; J.S. Coron. Heidelberg, Germany : Springer, 2013. pp. 142-158 (Lecture Notes in Computer Science).
    @inproceedings{ee53ecc99698434dbb0b48a35f7ee1d6,
    title = "Fides: Lightweight Authenticated Cipher with Side-Channel Resistance for Constrained Hardware",
    abstract = "In this paper, we present a novel lightweight authenticated cipher optimized for hardware implementations called Fides. It is an online nonce-based authenticated encryption scheme with authenticated data whose area requirements are as low as 793 GE and 1001 GE for 80-bit and 96-bit security, respectively. This is at least two times smaller than its closest competitors Hummingbird-2 and Grain-128a. While being extremely compact, Fides is both throughput and latency efficient, even in its most serial implementations. This is attained by our novel sponge-like design approach. Moreover, cryptographically optimal 5-bit and 6-bit S-boxes are used as basic nonlinear components while paying a special attention on the simplicity of providing first order side-channel resistance with threshold implementation.",
    keywords = "EWI-24465, keyed sponge, glitch-free masking, authenticated encryption, IR-89342, Lightweight cryptography, almost bent permutation, METIS-302705, APN permutation",
    author = "Beg{\"u}l Bilgin and Andrey Bogdanov and Miroslav Knezevic and Florian Mendel and Qingju Wang",
    note = "10.1007/978-3-642-40349-1_9",
    year = "2013",
    doi = "10.1007/978-3-642-40349-1_9",
    language = "Undefined",
    isbn = "978-3-642-40348-4",
    series = "Lecture Notes in Computer Science",
    publisher = "Springer",
    pages = "142--158",
    editor = "G. Bertoni and J.S. Coron",
    booktitle = "Cryptographic Hardware and Embedded Systems, CHES 2013",

    }

    Bilgin, B, Bogdanov, A, Knezevic, M, Mendel, F & Wang, Q 2013, Fides: Lightweight Authenticated Cipher with Side-Channel Resistance for Constrained Hardware. in G Bertoni & JS Coron (eds), Cryptographic Hardware and Embedded Systems, CHES 2013. Lecture Notes in Computer Science, vol. 8086, Springer, Heidelberg, Germany, pp. 142-158. https://doi.org/10.1007/978-3-642-40349-1_9

    Fides: Lightweight Authenticated Cipher with Side-Channel Resistance for Constrained Hardware. / Bilgin, Begül; Bogdanov, Andrey; Knezevic, Miroslav; Mendel, Florian; Wang, Qingju.

    Cryptographic Hardware and Embedded Systems, CHES 2013. ed. / G. Bertoni; J.S. Coron. Heidelberg, Germany : Springer, 2013. p. 142-158 (Lecture Notes in Computer Science; Vol. 8086).

    Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

    TY - GEN

    T1 - Fides: Lightweight Authenticated Cipher with Side-Channel Resistance for Constrained Hardware

    AU - Bilgin, Begül

    AU - Bogdanov, Andrey

    AU - Knezevic, Miroslav

    AU - Mendel, Florian

    AU - Wang, Qingju

    N1 - 10.1007/978-3-642-40349-1_9

    PY - 2013

    Y1 - 2013

    N2 - In this paper, we present a novel lightweight authenticated cipher optimized for hardware implementations called Fides. It is an online nonce-based authenticated encryption scheme with authenticated data whose area requirements are as low as 793 GE and 1001 GE for 80-bit and 96-bit security, respectively. This is at least two times smaller than its closest competitors Hummingbird-2 and Grain-128a. While being extremely compact, Fides is both throughput and latency efficient, even in its most serial implementations. This is attained by our novel sponge-like design approach. Moreover, cryptographically optimal 5-bit and 6-bit S-boxes are used as basic nonlinear components while paying a special attention on the simplicity of providing first order side-channel resistance with threshold implementation.

    AB - In this paper, we present a novel lightweight authenticated cipher optimized for hardware implementations called Fides. It is an online nonce-based authenticated encryption scheme with authenticated data whose area requirements are as low as 793 GE and 1001 GE for 80-bit and 96-bit security, respectively. This is at least two times smaller than its closest competitors Hummingbird-2 and Grain-128a. While being extremely compact, Fides is both throughput and latency efficient, even in its most serial implementations. This is attained by our novel sponge-like design approach. Moreover, cryptographically optimal 5-bit and 6-bit S-boxes are used as basic nonlinear components while paying a special attention on the simplicity of providing first order side-channel resistance with threshold implementation.

    KW - EWI-24465

    KW - keyed sponge

    KW - glitch-free masking

    KW - authenticated encryption

    KW - IR-89342

    KW - Lightweight cryptography

    KW - almost bent permutation

    KW - METIS-302705

    KW - APN permutation

    U2 - 10.1007/978-3-642-40349-1_9

    DO - 10.1007/978-3-642-40349-1_9

    M3 - Conference contribution

    SN - 978-3-642-40348-4

    T3 - Lecture Notes in Computer Science

    SP - 142

    EP - 158

    BT - Cryptographic Hardware and Embedded Systems, CHES 2013

    A2 - Bertoni, G.

    A2 - Coron, J.S.

    PB - Springer

    CY - Heidelberg, Germany

    ER -

    Bilgin B, Bogdanov A, Knezevic M, Mendel F, Wang Q. Fides: Lightweight Authenticated Cipher with Side-Channel Resistance for Constrained Hardware. In Bertoni G, Coron JS, editors, Cryptographic Hardware and Embedded Systems, CHES 2013. Heidelberg, Germany: Springer. 2013. p. 142-158. (Lecture Notes in Computer Science). https://doi.org/10.1007/978-3-642-40349-1_9